Aggregator

强势围观

Mobile users in Brazil are the target of a new malware campaign that delivers a new Android banking trojan named Rocinante. "This malware family is capable of performing keylogging using the Accessibility Service, and is also able to steal PII from its victims using phishing screens posing as different banks," Dutch security company ThreatFabric said. "Finally, it can use all this exfiltrated

Даже видео с любимыми знаменитостями может быть ловушкой для доверчивых.

Transport for London (TfL) has sent out notifications to customers on Sunday evening saying that they “are currently dealing with an ongoing cyber security incident.” The government body that manages most of the transport network of United Kingdom’s capital did not provide additional details about the cyber incident, though BBC sources said that the organization’s “backroom systems at the corporate headquarters” are mainly affected. Transport for London has yet to provide an update on the … More →

The post Transport for London is dealing with a cyber security incident appeared first on Help Net Security.

Новые домены нашли своё место не только в бизнесе, но и в киберпреступлениях.

8月15日，在中国信息安全测评中心的指导下，由广东省网络空间安全产业创新联合会主办、广州锦行网络科技有限公司承办的2024第一届青马红客“精英训练营”开营仪式隆重举行。此次活动得到了业界的广泛关注

Three British men are facing jail after pleading guilty to running an MFA bypass site dubbed “OTP Agency”

Что еще изменилось в подходе компаний к защите данных?

尚不清楚二者之间是否存在关联

并非压制言论自由

Recently, Canonical has released security updates to address multiple Vim vulnerabilities in Ubuntu 14.04 ESM. Ubuntu 14.04, codenamed “Trusty Tahr,” reached its end-of-life (EOL) on April 30, 2019. After this date, Canonical stopped providing official updates, including security patches, for this version. However, some users and organizations still rely on older versions like Ubuntu 14.04 […]

The post Ubuntu Patches Multiple Vim Vulnerabilities appeared first on TuxCare.

The post Ubuntu Patches Multiple Vim Vulnerabilities appeared first on Security Boulevard.

ACI Worldwide announced a collaboration with Red Hat to make ACI’s cloud-native Enterprise Payments Platform available on any cloud infrastructure. With this collaboration, ACI will help customers ease their migration to the cloud to better adapt to the rapidly evolving digital economy and power the next generation of payment services. Using Red Hat OpenShift empowers banks, merchants, and billers with more flexibility and choice on how they wish to deploy their payment services, whether that … More →

The post ACI Worldwide partners with Red Hat to simplify payment operations appeared first on Help Net Security.

Sometimes there’s more than just an enticing product offer hiding behind an ad

Техгиганты отрицают участие в программе сбора голосовых данных.

南华早报周日报道称，国产 GPU 开发商象帝先上周五举行全体员工大会，宣布公司解散，解雇所有员工。象帝先总部位于重庆，有近 400 名员工。报道称，由于象帝先未能履行上一轮融资中的条款，股东提起诉讼，导致其银行账户被冻结。周日晚上，象帝先发表声明否认倒闭，称只是发展未达到预期，它面临市场调整压力，作为重组的一部分而裁掉了部分员工。它保留了继续开发 GPU 所需要的核心的研发和运营员工。

Хакеры активно используют Google Таблицы для осуществления своих замыслов.

A vulnerability was found in Adobe Acrobat Reader up to 11.0.22/2015.006.30355/2017.011.30066/2017.012.20098. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper validation of array index (Array Index). This vulnerability is known as CVE-2017-16410. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

We are thrilled to announce the latest enhancement to ARMO Platform: Seccomp Profiles Leveraging eBPF. This feature uses

The post NEW: ARMO Platform Introduces Auto-Generation of Seccomp Profiles appeared first on ARMO.

The post NEW: ARMO Platform Introduces Auto-Generation of Seccomp Profiles appeared first on Security Boulevard.

​TideInspire(潮启)是由新潮信息Tide安全团队自研推出的一款移动端安全管控平台。通过利用该平台获取的数据，进而对山东省移动应用数量、恶意仿冒应用分布情况，安全漏洞数量等九个方面进行总结与展示。

A vulnerability was found in Adobe Acrobat Reader up to 11.0.22/2015.006.30355/2017.011.30066/2017.012.20098. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper validation of array index (Array Index). This vulnerability is traded as CVE-2017-16391. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.